OESA-2022-1876

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1876
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2022-1876.json
JSON Data
https://api.osv.dev/v1/vulns/OESA-2022-1876
Upstream
  • CVE-2021-20223
Published
2022-09-01T11:04:12Z
Modified
2025-09-03T06:17:13.787008Z
Summary
sqlite security update
Details

SQLite is a C-language library that implements a small, fast, self-contained,high-reliability, full-featured, SQL database engine. SQLite is the most used database engine in the world. SQLite is built into all mobile phones and most computers and comes bundled inside countless other applications that people use every day.It also include lemon and sqlite3_analyzer and tcl tools.

Security Fix(es):

An issue was found in fts5UnicodeTokenize() in ext/fts5/fts5_tokenize.c in Sqlite. A unicode61 tokenizer configured to treat unicode "control-characters" (class Cc), was treating embedded nul characters as tokens. The issue was fixed in sqlite-3.34.0 and later.(CVE-2021-20223)

Database specific 
{
    "severity": "Critical"
}
References

Affected packages

openEuler:20.03-LTS-SP1 / sqlite

Package

Name
sqlite
Purl
pkg:rpm/openEuler/sqlite&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.32.3-5.oe1

Ecosystem specific 

{
    "src": [
        "sqlite-3.32.3-5.oe1.src.rpm"
    ],
    "aarch64": [
        "sqlite-devel-3.32.3-5.oe1.aarch64.rpm",
        "sqlite-debuginfo-3.32.3-5.oe1.aarch64.rpm",
        "sqlite-3.32.3-5.oe1.aarch64.rpm",
        "sqlite-debugsource-3.32.3-5.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "sqlite-3.32.3-5.oe1.x86_64.rpm",
        "sqlite-debuginfo-3.32.3-5.oe1.x86_64.rpm",
        "sqlite-devel-3.32.3-5.oe1.x86_64.rpm",
        "sqlite-debugsource-3.32.3-5.oe1.x86_64.rpm"
    ],
    "noarch": [
        "sqlite-help-3.32.3-5.oe1.noarch.rpm"
    ]
}

Database specific

source 
"https://repo.openeuler.org/security/data/osv/OESA-2022-1876.json"